Static task
static1
Behavioral task
behavioral1
Sample
99e010dc6b9d58baac4b07d20e42daf8f81bf0ea3abd0295894b0799035df442.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
99e010dc6b9d58baac4b07d20e42daf8f81bf0ea3abd0295894b0799035df442.exe
Resource
win10v2004-20220812-en
General
-
Target
99e010dc6b9d58baac4b07d20e42daf8f81bf0ea3abd0295894b0799035df442
-
Size
273KB
-
MD5
c4921a7d897628031e301c8993aa0fd6
-
SHA1
66281e0a2756e12820b31f0e6bd12fcc9e3a4947
-
SHA256
99e010dc6b9d58baac4b07d20e42daf8f81bf0ea3abd0295894b0799035df442
-
SHA512
47510a8e0729a15553f828142fa0fcd34a7f083f48a66b5722643e18618102ef1b7a73e44c9dbec7bedf15aaa1751c20528eed09783a314388e0a5c092146c79
-
SSDEEP
6144:2tavQDXNqsGdkgC0z1MrNI8Z8L6RQ7hqVDpzv93nB5:2tavQD7GagC0Gru4
Malware Config
Signatures
Files
-
99e010dc6b9d58baac4b07d20e42daf8f81bf0ea3abd0295894b0799035df442.exe windows x86
5df0b296723be8d93b9391a469d73bd2
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
InitializeCriticalSection
GlobalGetAtomNameA
LoadLibraryA
GetCurrentProcess
HeapReAlloc
SetFilePointer
VirtualAlloc
GetCPInfo
GetDateFormatA
LeaveCriticalSection
GetACP
GetOEMCP
HeapSize
IsValidCodePage
GetSystemTimeAsFileTime
GetLocaleInfoA
TerminateProcess
WriteFile
EnumResourceNamesW
GetCurrentProcessId
GetStringTypeA
EnterCriticalSection
WriteConsoleA
FreeLibrary
SetUnhandledExceptionFilter
GetTimeFormatA
MultiByteToWideChar
UnhandledExceptionFilter
GetConsoleOutputCP
RtlUnwind
SetStdHandle
IsDebuggerPresent
RaiseException
shlwapi
SHCreateStreamOnFileW
SHCreateStreamOnFileEx
PathIsFileSpecA
PathIsContentTypeA
PathAppendA
PathCreateFromUrlW
rpcrt4
RpcStringFreeA
Sections
.text Size: 129KB - Virtual size: 268KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 141KB - Virtual size: 140KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ